CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2897 matches found

IBM Security Bulletins•added 2025/05/09 9:6 a.m.•10 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team.This bulletin contains information...

7.5CVSS6.2AI score0.00716EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/05/09 9:5 a.m.•11 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jitmodulefromflatbuffer.This bulletin contains information regarding the vulnerability and its fixture...

5.5CVSS6.2AI score0.00271EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/05/09 9:4 a.m.•8 views

5.5CVSS6.1AI score0.00223EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2025/05/09 9:3 a.m.•11 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability classified as critical was found in PyTorch 2.6.0. This vulnerability affects the function torch.lstm_cell. The manipulation leads to memory corruption.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability classified as critical was found in PyTorch 2.6.0. This vulnerability affects the function torch.lstmcell. The manipulation leads to memory corruption.This bulletin contains information regarding the...

5.5CVSS5.3AI score0.00208EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/05/09 9:2 a.m.•12 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability is the function torch

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability is the function torch.This bulletin contains information regarding the vulnerability and its fixture...

5.5CVSS5.4AI score0.00208EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/05/09 9:1 a.m.•11 views

7.5CVSS6.1AI score0.004EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/05/09 9:0 a.m.•20 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability. .This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

8.8CVSS7AI score0.06898EPSS

Exploits6Affected Software1

BDU FSTEC•added 2025/05/09 12:0 a.m.•3 views

The vulnerability of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, relates to the unlimited download of dangerous files. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, lies in its ability to allow unlimited uploading of sensitive files. Exploiting this vulnerability could enable an attacker operating remotely to gain unauthorized...

6.5CVSS5.5AI score0.00222EPSS

Exploits0References2Affected Software1

IBM Security Bulletins•added 2025/05/08 3:33 p.m.•13 views

Security Bulletin: IBM Maximo Application Suite uses Python-3.11 which is vulnerable to CVE-2024-4032.

Summary IBM Maximo Application Suite uses Python-3.11 which is vulnerable to CVE-2024-4032. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-4032 DESCRIPTION: An unspecified error with ipaddress considers some not globally...

7.5CVSS6.5AI score0.01042EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/05/08 3:31 p.m.•11 views

Security Bulletin: IBM Maximo Application Suite -Iot Component uses netty-handler-4.1.114.Final.jar which is vulnerable to CVE-2025-24970.

Summary IBM Maximo Application Suite -Iot Component uses netty-handler-4.1.114.Final.jar which is vulnerable to CVE-2025-24970. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-24970 DESCRIPTION: Netty, an asynchronous,...

7.5CVSS6.9AI score0.01966EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/05/08 3:19 p.m.•11 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to idna-0.1.5.crate, idna-0.5.0.crate CVE-2024-12224

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to idna-0.1.5.crate, idna-0.5.0.crate CVE-2024-12224. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-12224 DESCRIPTION: idna 0.5.0 and earlier accepts Punycode...

8.8CVSS7.2AI score0.00177EPSS

Exploits1Affected Software1

RedhatCVE•added 2025/05/08 3:16 p.m.•13 views

CVE-2025-2898

IBM Maximo Application Suite 9.0 could allow an attacker with some level of access to elevate their privileges due to a security configuration vulnerability in Role-Based Access Control RBAC configurations...

8.8CVSS6.7AI score0.00279EPSS

Exploits0References1

CNVD•added 2025/05/07 12:0 a.m.•7 views

IBM Maximo Asset Management Server-Side Request Forgery Vulnerability

IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from International Business Machines IBM. The solution is capable of managing all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control for...

5.4CVSS6.7AI score0.00178EPSS

Exploits0References1

ATTACKERKB•added 2025/05/06 3:16 p.m.•2 views

CVE-2025-2898

8.8CVSS5.8AI score0.00279EPSS

Exploits0References2Affected Software1

OSV•added 2025/05/06 3:16 p.m.•2 views

CVE-2025-2898

8.8CVSS5.8AI score0.00279EPSS

Exploits0References2

NVD•added 2025/05/06 3:16 p.m.•18 views

CVE-2025-2898

8.8CVSS0.00279EPSS

Exploits0References2

Vulnrichment•added 2025/05/06 2:41 p.m.•12 views

CVE-2025-2898 IBM Maximo Application Suite privilege escalation

7.5CVSS6.7AI score0.00279EPSS

Exploits0References1

CVE•added 2025/05/06 2:41 p.m.•61 views

CVE-2025-2898

IBM Maximo Application Suite 9.0 contains an elevation-of-privilege vulnerability arising from misconfigured RBAC permissions in the Role-Based Access Control settings. The issue affects the Location Service for Esri Component (9.0) and can be exploited by an attacker with some level of access to...

8.8CVSS7.4AI score0.00279EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/05/06 2:41 p.m.•15 views

CVE-2025-2898 IBM Maximo Application Suite privilege escalation

7.5CVSS0.00279EPSS

Exploits0References1

IBM Security Bulletins•added 2025/05/06 10:17 a.m.•19 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to dompurify-3.2.3.tgz CVE-2025-26791

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to dompurify-3.2.3.tgz CVE-2025-26791. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-26791 DESCRIPTION: DOMPurify before 3.2.4 has an incorrect template literal...

6.1CVSS6.4AI score0.00559EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by